--- In zope@yahoogroups.com, Jochen Knuth <J.Knuth@i...> wrote:
you know that mod_rewrite uses mod_proxy if you have a [P] at the end of your RewriteRule? Yes, I knew that, for mod_rewrite can't be installed without mod_proxy. I thaught that mod_rewrite had a better security check to avoid anonymous browsing. Does one still have this problem with mod_rewrite?
From the mod_rewrite docs: [...]
Also you can limit who can use the proxy (from the mod_proxy docs): ================================================================= Controlling access to your proxy You can control who can access your proxy via the normal <Directory> control block using the following example:
<Directory proxy:*> Order Deny,Allow Deny from all Allow from yournetwork.example.com </Directory>
[...] When using a reverse proxy (using the ProxyPass directive with ProxyRequests Off), access control is less critical because clients can only contact the hosts that you have specifically configured. I will try that.
Thanks, Josef